Analysis

  • max time kernel
    142s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 03:35

General

  • Target

    a3b0dd2529e95315b050bfe25f1fd0ce_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a3b0dd2529e95315b050bfe25f1fd0ce

  • SHA1

    04067034c2e609b5e441501990115e14f2bd582a

  • SHA256

    1b88ba8f5cf49131c1b50497ddb7d5fa49db605a9375e8d5c550fdebc16b0b12

  • SHA512

    82f90e6e0b91fe3bf66288ef3f73cfb2314fd559eb59918b34f8c639ad67c8bf12a78ac2260d2b37a9f14e74987357ff8b8138bc768afd1c91bdb7bae7185a97

  • SSDEEP

    1536:Sc7Ny2RePRARl4yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:Sc7L8yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3b0dd2529e95315b050bfe25f1fd0ce_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1984 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2160

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b33530c9eb18b927c221d87d15d5c1c3

    SHA1

    1952e9f4b2e2e889dfd4ae81e116219be87b8b77

    SHA256

    cbd98f551a111ce856b075ff4dea65b43a6df0a8e1720ac65b18abd9682fcf83

    SHA512

    dcfe83cbbd3eeb421a241d22f362189ee8a340e8b98227d45f6ba6f1defccbd08c59f45ee33059cfb717ce9fd7f2b3c0ea0b286c53f81ac3f345505fa08d79d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    84ea89afa52e33468f025895f4edb3d8

    SHA1

    437b9a8f2533b8ab06b84a2d06a64a23508c1348

    SHA256

    86e0f8233cfeabe8b06cc10b53333683053f90b0e67163f79fda11303346aa9c

    SHA512

    b0787b9f5b37ff6a7bdf81a679b5e9b24d87c3484679abf0d3f10b8a3a15f2f7d4143e9a79355773145a9f76e074d9fc090f4dfb161664e5782eb5ac31cb2407

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    34be2f2afcf59ebb1b68efecfb5a784a

    SHA1

    eb318c1e5a1215d5e247c1eb9310a1c2d3c59f35

    SHA256

    2c2881a78dae524ce60dc433d10c219719d6d566ea8bd3d4d8849fa4faa010b6

    SHA512

    cd9561a001e4c58e3bab699c67a9fdb4da0aaf77722046c3dab210cefa8383c9e2bc7d8fa03518acdf47982910c884a22950646885686fa64c25939699e0056c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dca87647114a3f17af621293fa7e4ce3

    SHA1

    8944ad607f38f2bff8eecfffb1c8d69e7fa91b84

    SHA256

    d39a3f448baa25a2c1ecdbe5e39a5f5c2bc69b1843727c4a6469fa526c7047b0

    SHA512

    8a2ab3328a2683ddfb2283d6ae1574135bf4d36af96ec27cb09a0a4c61b8bdd7ca1bd9ebcb7b1f006e52520283e71ec8cdf694a07042d91636cad231be7968f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    74d7bc3f213abafc0208dbede714024b

    SHA1

    d13f8a8fab54b64ad1021609c84d3e1685a4fd8d

    SHA256

    58334f2a15572f69c8da74bf9f071c7db081ec7e8443e077ee2ffb6e957416ba

    SHA512

    ae7a8fbd503ce591f1f4df79846a743ddf912d1ed692db419b55319266b8e673a2d167ffadf3aefe718b5eed18785f7399c8b96089af5dce9c25dcbca758fedb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    42cb065116aada4f4a183ca34214fa71

    SHA1

    119f90d3aa3d2db75b5332242714473fc81b5acf

    SHA256

    5ca9856b9fdd24e2bf84e6276ff0a4cfffc8fb9e0cec3fb33e0ae6a46490439b

    SHA512

    8667356932690b8c2434cf20bb9f496d31f79fac94ec6969fc07370087009a91266c25d2d969df98f50de1251d15795ae6d4761aa9a101947ade31d1361b0f66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    299cd83e485070b5160d9b1f1d1f34dd

    SHA1

    06a6237780be07a297212f3c7645a4ddef3c287f

    SHA256

    706f6fed6afe9d067916f32fc680547e89fc2376514c348ab6e8099ac8b80557

    SHA512

    2957551877789707b42d45554d110a7032e1857da0eaf5670131f84857d1c3daff3d07b09fcde98e22ba1dbe1e9853570869eb9c3921f46c0f3c93f5683268c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43ab114f22c40ae6e2183c76d08635b2

    SHA1

    30cd7a5906249332983789bef9b2bd03a3c95fcf

    SHA256

    08bac6241f047b2c5e5a41c6c27d350f3ba786c9941ae9282252aaf575d6b51b

    SHA512

    2430a20c7c7e0254a528d8fa8208066dde62596b2a322a6a9babffd12553e63496ad343ded4c4c739eca1f82e554bcd5772e57a0111663724a56d7e4262d602f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d8df9e4614c0843ed9e178faf16b2cde

    SHA1

    9e974244cf97489315e1fb55e81c3588d738f5fa

    SHA256

    039eeaf506e0bbb92aa967f58a0c324fe4a685fa6661ef357ae49c4ce775b431

    SHA512

    e9bf14eae3c5f49de7d1cececfab7af6c220f893f877ad1b14e9d3fe52df9595914a89afd2256bcf6374df97eb6910dfa7be99c745f1b9282a7a0699b92536f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f370e24ea36cb46c5ccf8288e570e3a3

    SHA1

    be68388a61973c387e21f7e2eea76caea06f82b0

    SHA256

    14739d3335852ebe5f35b29d594a13879ca729fe93f61465669da83c9d6baa76

    SHA512

    bb5ab35f7f4c638182998f8be62e26cd0f4a6529686e7188aa449c99f6a9059f2da4e7f5df5a9f227d2e8956ee02073d43c2dbbf9492ceae9f1d3deae35a2b18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    054ec3a45a2ab3ca5726e4abb9a46d22

    SHA1

    da174dc2332b59a0ce797908d7e66f54c7987fea

    SHA256

    5c7740556f9f96dcc2292b760297eead26ff5f632f3bba62f90e27f67d0ac69a

    SHA512

    d52ed67ae8cb919f668647e6a26eadef94081dfc1038cb14ebb091474b301ae3280cb439c6d19c4574c834a49ed54a09e4a4891d5300a7757418eeafadde7c46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8b25661c31a3419c656768bf393f62c

    SHA1

    7a52424988dcc663263182ed8e142ac40b4cc04e

    SHA256

    fada94153afa1f2c6a5aa99a7120932618a3b41c9542d8b3232bf41e5ef5457c

    SHA512

    f0e936c7c3eb4d6823f41a7851187e34a9c574a629ecd3768c326b29fc83efccdbd1ea9e9f484fc57f23ff588e6a53eb875ea205ddba072277726e609c4d03ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ecc6820cc5d3a4bca4bd60c5cd106eab

    SHA1

    958ebd0c43e7f83faddc42989d41a2aa18e642f7

    SHA256

    4f3a73d13c643a79eef27d04d35605e8c96659b309d1358c6edaa5851a03a742

    SHA512

    8b8cb816a4c00cf75c6fcff480b5ea082087053deb16341b547ab9a07e599e0aa984cef736d53fab38322f82c6e642de7a4b20bb3183ec3e2293ac4110c796d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a9e100bf152544827325b0ca690e9a4

    SHA1

    97c8831a14ab0390ae2f71ea1412190c783f1e97

    SHA256

    db706ba0591ad92030a990685a1c9afbc5e5a53bedcf44a4354eff2d0c0cb786

    SHA512

    f707ece06347c95cf2142c2fc8fac1c6d03b9ef2d90e82b2527c9570753a95b2a619500a5f0f5992c42fbd16d49b077d3b7ce623841a0bd49a46c1857dc277d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44ddecf1b3883a4f3a1e47ba5b9cd20c

    SHA1

    9c30576d8873aa9887dc23cfda1830c9463aade6

    SHA256

    719ffcbbbf16e6efbd73a9ba7c1b289e431030c35b0b5c358260bf3430f8b934

    SHA512

    0e9ff8a3d9f84bb5ce7b3900f4294857df1229995fb82fd3f37055b613479134ec51f346fb84c32d276e406feffbf68ff89c21e8dc776345cffe7e9bedd2ec59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f4a6567a244ac3e7c4c5efd441ffa589

    SHA1

    7b46933e30e309f5d2f6a8a221792910d472c683

    SHA256

    10104ffaa49dfe893b1239fda34aa58e9819c9f695ae38df8b22d8872eedd496

    SHA512

    51c28549cea129b7545018178b50582e80d4ba7af226036791e22769c82d00e802e6546254d1cce76809503b691ad9f26cb207a366cee4a0e88857bf849c00b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c8b4ea915d69544eb6fffbdc6bf1398

    SHA1

    0d0c5b4fc99f9bdc63d7926ce108b9580833f415

    SHA256

    cd4c063e54219ed7c232c5d152df89c66077183742913a79231923826777e3d1

    SHA512

    f3c4a5a3a5d575c44f2427bd4fd77e06fb150387cf52bb0eff3069680bfbb0aad5ebff4b7a6a4fd096ef072b80a9aa5635b364fb386534f0645f64b3fa8aa2db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa2dec63c2f4d07fdbd70f356179e67b

    SHA1

    5782d52e731b789f19c6c56d1195ac8cc708c26f

    SHA256

    9cc6975f19b26ef3971565567c5996ef51408bc89601bf87e7017f26f7c71f1e

    SHA512

    d2da15e1ab70bc2ccfe8ba9dd329b955afd69bc6461ebd62520cd34e650024c5dbcda2da6a2fd00b6f573416209c192db9bafa5829b6c95872297cd52ae65be9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6dcd3ec8f52bfedd41c8d26f0c00ea8

    SHA1

    6d94fbf3c183e42056a03a5fb5eef106607365be

    SHA256

    bef5166f6413c79b534080dc327aa6fd2a81e30e139d0cf827a70581bfbc88cb

    SHA512

    c93b521718cad0f3f7d527f5d64f08e404ed7ccf7815fafba59e8e269d6e5adff01321f16620b150db2cd9df6516e668455648cade20b2d6620cfe02632698b9

  • C:\Users\Admin\AppData\Local\Temp\Cab1373.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab1450.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1476.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b